$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa File: CC2A0136F58C11EEB142585CC4F9AE02.roa (raw, json) Hash identifier: dYCX7IHIDRRn8UilGlq5sfI3SJv98t999gOaYY31/hc= Subject key identifier: 94:46:A5:86:A8:73:15:C0:3A:D6:16:BA:F2:32:02:82:71:AE:83:D9 Certificate issuer: /CN=A91C7B15/serialNumber=AFB08D6F7E97785B6F31171EF82E31BB1D06E2E3 Certificate serial: 13A0 Authority key identifier: AF:B0:8D:6F:7E:97:78:5B:6F:31:17:1E:F8:2E:31:BB:1D:06:E2:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa Signing time: Thu 25 Apr 2024 00:18:16 +0000 ROA not before: Thu 25 Apr 2024 00:18:16 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 37988 IP address blocks: 2402:7340:2::/48 maxlen: 48 2402:7340:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.crl rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5024 (0x13a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15/serialNumber=AFB08D6F7E97785B6F31171EF82E31BB1D06E2E3 Validity Not Before: Apr 25 00:18:16 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6629a148-0439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:5e:e3:24:e8:d7:ab:1c:c7:4b:dd:d4:3f: 7a:bb:8d:79:07:bc:cc:17:56:04:b2:a4:4c:30:fa: 8a:ce:7a:21:bd:f2:92:85:e6:03:18:81:06:bd:84: 0f:d2:da:2a:5b:f6:18:17:6e:40:af:20:0c:ea:97: 1b:fa:3d:d1:6f:47:38:8f:56:c0:5c:af:2d:17:0f: ff:29:57:8a:9f:43:97:bd:73:bb:2b:4f:d3:fb:5d: 7e:0f:d6:3a:b0:f3:49:21:68:75:c2:b9:be:4d:2e: 0c:f6:0a:39:97:8e:f0:44:87:b9:d8:2f:02:0b:ac: b1:64:fb:fe:b4:84:c7:6e:95:a1:8b:64:79:4e:b5: 23:40:f2:13:9e:38:e4:00:f5:49:0c:f6:00:05:a0: 3e:80:7f:74:01:6a:b0:c0:a4:9a:fc:f3:ed:11:b5: 7d:3d:f4:6b:0b:16:70:b4:8a:d9:8b:62:fd:0c:e9: 89:a3:cf:e5:4d:e8:88:3f:97:5b:17:20:9a:59:c1: f1:d8:17:50:7d:ac:f2:e9:da:68:a1:28:dc:de:94: 64:4d:7b:5d:8d:b6:37:f8:e8:82:df:1d:7c:65:8a: b1:4f:73:ee:e6:5e:84:e8:cc:fa:b0:82:ff:9d:53: 01:51:ef:d2:f8:92:59:f7:3e:ed:1d:d1:44:67:79: fe:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:46:A5:86:A8:73:15:C0:3A:D6:16:BA:F2:32:02:82:71:AE:83:D9 X509v3 Authority Key Identifier: keyid:AF:B0:8D:6F:7E:97:78:5B:6F:31:17:1E:F8:2E:31:BB:1D:06:E2:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:7340:2::/48 2402:7340:4000::/34 Signature Algorithm: sha256WithRSAEncryption 59:17:1f:4e:c7:04:4d:f7:f4:d9:7a:e8:ab:39:3c:b0:ca:9e: d1:a2:4e:ca:9f:3c:01:80:f3:8a:6a:6d:d5:14:bf:6b:cc:01: 16:39:8a:ee:c6:ab:f1:ef:7f:b8:47:3e:cc:e5:32:27:4c:1d: 14:a4:83:1a:35:2f:32:e4:04:d0:ad:ab:22:bd:48:00:9f:48: 2e:3c:a2:9a:5b:18:a9:75:15:ca:52:1a:9a:cf:f9:d3:4d:15: 10:16:3c:d8:dc:56:4f:d8:fe:a3:fe:e9:4d:51:43:b4:40:5c: 8f:5b:4b:90:68:22:ec:78:ff:08:2d:d9:48:2c:11:41:00:a3: bf:29:fe:06:fe:7e:30:45:01:15:56:dd:bb:0a:52:01:9f:56: 5e:1b:74:79:84:a0:66:cc:25:69:f5:68:d7:58:e0:de:63:33: 9b:e7:c4:8f:a6:c4:60:63:c3:09:b3:38:92:c4:c3:04:ad:d3: fe:ae:7d:5e:42:1b:cb:7d:45:17:87:44:e5:ef:e7:3d:49:1e: 8f:d8:c4:13:43:50:4f:f3:df:89:77:18:ea:f1:bd:f3:80:39: c6:ca:3d:50:5d:50:4a:5f:bd:df:3d:b8:a3:96:92:01:e1:28: f1:d7:f9:f7:7e:73:9a:ee:4f:de:b3:6b:87:6e:b7:f5:b1:e4: 61:6e:06:ee -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICE6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKEFGQjA4RDZGN0U5Nzc4NUI2RjMxMTcxRUY4MkUzMUJC MUQwNkUyRTMwHhcNMjQwNDI1MDAxODE2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5YTE0OC0wNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymVe4yTo16scx0vd1D96u415B7zMF1YEsqRMMPqKznohvfKSheYDGIEGvYQP 0toqW/YYF25AryAM6pcb+j3Rb0c4j1bAXK8tFw//KVeKn0OXvXO7K0/T+11+D9Y6 sPNJIWh1wrm+TS4M9go5l47wRIe52C8CC6yxZPv+tITHbpWhi2R5TrUjQPITnjjk APVJDPYABaA+gH90AWqwwKSa/PPtEbV9PfRrCxZwtIrZi2L9DOmJo8/lTeiIP5db FyCaWcHx2BdQfazy6dpooSjc3pRkTXtdjbY3+OiC3x18ZYqxT3Pu5l6E6Mz6sIL/ nVMBUe/S+JJZ9z7tHdFEZ3n+mwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFJRGpYao cxXAOtYWuvIyAoJxroPZMB8GA1UdIwQYMBaAFK+wjW9+l3hbbzEXHvguMbsdBuLj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS9GQUY2RkQ3ODcx RTYxMUU4OTk2RTJFNjRDNEY5QUUwMi9yN0NOYjM2WGVGdHZNUmNlLUM0eHV4MEc0 dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I3Q05iMzZYZUZ0dk1SY2UtQzR4dXgwRzR1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdCMTUvRkFGNkZENzg3MUU2MTFFODk5NkUyRTY0QzRGOUFFMDIvQ0MyQTAxMzZG NThDMTFFRUIxNDI1ODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBwAkAnNAAAIDBgYkAnNAQDANBgkqhkiG9w0BAQsFAAOCAQEA WRcfTscETff02Xroqzk8sMqe0aJOyp88AYDzimpt1RS/a8wBFjmK7sar8e9/uEc+ zOUyJ0wdFKSDGjUvMuQE0K2rIr1IAJ9ILjyimlsYqXUVylIams/5000VEBY82NxW T9j+o/7pTVFDtEBcj1tLkGgi7Hj/CC3ZSCwRQQCjvyn+Bv5+MEUBFVbduwpSAZ9W Xht0eYSgZswlafVo11jg3mMzm+fEj6bEYGPDCbM4ksTDBK3T/q59XkIby31FF4dE 5e/nPUkej9jEE0NQT/PfiXcY6vG984A5xso9UF1QSl+93z24o5aSAeEo8df5935z mu5P3rNrh2639bHkYW4G7g== -----END CERTIFICATE-----Generated at Mon May 20 19:59:48 2024 by rpki-client on console-ams.rpki-client.org